20 SECURITY OPERATIONS, RISK AND THREAT INTELLIGENCE VENDORS

A number of vendors now have products better equipped to meet the needs of any security teams struggling with traditional security information and event management tools. From vendors that provide cloud-native SIEM to those o ering threat intelligence to stay ahead of the hackers, here‘s a look at 20 security operations, risk and threat intelligence companies.

Nick Schneider

President, CEO

Arctic Wolf’s security operations platform has essential capabilities such as 24/7 monitoring and threat detection, as well as response and recovery in the event of an attack. In addition to this managed detection and response o ering, Arctic Wolf provides digital risk management and managed security awareness.

Marc van Zadelho CEO

As security is being recognized as a data analytics problem, Devo o ers a cloud-native alternative to on-premises security information and event management systems that many security teams depend upon. Devo‘s technology promises to enable the use of a greater amount of security data at a substantially reduced cost.

Vladir Sandler

Co-Founder, CEO

Cloud security startup Lightspin delivers a contextdriven security platform for cloud-native and Kubernetes environments. The company recently launched a free tier for its Cloud Native Application Protection Platform (CNAPP), which aims to quickly prioritize and remediate cloud security threats.

Dean Sysman

Co-Founder, CEO

With a wide range of offerings for cyber asset attack surface management and SaaS management, Axonius integrates with hundreds of data sources with the aim of providing a comprehensive asset inventory, uncovering gaps and automatically validating and enforcing policies.

Michael

DeCesare President, CEO

With its New-Scale security information and event management offering, Exabeam brings together ”cloud-scale” security log management with behavioral analytics and automation-driven cyber investigations. It is built on top of the cloud-native Exabeam Security Operations Platform.

Rapid7

Corey Thomas Chairman, CEO

Rapid7 introduced improved cloud detection and response, used to natively identify serious cloud threats with greater accuracy. The company also recently rolled out enhanced vulnerability assessment, which o ers continuous visibility into vulnerabilities and is easier to deploy thanks to it being an agentless technology.

Steve

Harvey CEO

Recent updates to BitSight's third-party risk management platform have included the introduction of additional insight for uncovering and prioritizing vulnerabilities and exposures among thirdparty vendors. BitSight also said that its fourthparty risk management product now provides increased supply chain risk visibility.

Thomas Kurian CEO

With its Chronicle Security Operations platform, Google Cloud brings together security analytics from its earlier Chronicle offering with automated response and remediation for security issues. Google Cloud is further enhancing Chronicle Security Operations with threat intelligence from its acquisition of Mandiant.

Christopher Ahlberg

Co-Founder, CEO

As a threat intelligence powerhouse, Recorded Future’s Intelligence Cloud brings together continuous data collection with comprehensive graph analysis and analysis from the company’s research team. The platform aims to give “the most complete coverage of intelligence” about malicious adversaries.

Jim

Rosenthal Co-Founder, CEO

BlueVoyant provides cyber-risk management across internal security with its managed detection and response offering and across external vendors. For external cyber-risk management, BlueVoyant has a unique supply chain defense product that aims to ensure issues are remedied by thirdparty vendors on behalf of BlueVoyant customers.

James

Campbell

Co-Founder, CEO

With a focus on cyber investigation and response automation, Cado Security delivers a digital forensics offering that is cloud-native, making it uniquely designed for cloud environments. Last summer, the startup unveiled cross-cloud support to help streamline cloud investigations.

Arvind

Krishna Chairman, CEO

Recent moves by IBM Security have included the acquisition of Randori, which brings attack surface management capabilities and o ensive cybersecurity services into the IBM portfolio. Security teams can use insight from Randori fed into IBM Security QRadar extended detection and response for real-time attack surface visibility.

Securonix

Nayaki Nayyar CEO

Securonix unveiled a new product it said is the industry’s first to integrate security information and event management, security orchestration, automation and response, and investigation capabilities. Dubbed Securonix Investigate, it aims to rapidly accelerate threat identification and response by security teams.

Stu Sjouwerman

Founder, CEO

A foremost vendor in the area of security awareness training products, KnowBe4’s flagship offering, Kevin Mitnick Security Awareness Training, focuses on enabling organizations to assess their social engineering risks while providing security awareness training to mitigate these risks.

Bill McDermott President, CEO

ServiceNow’s security orchestration, automation and response platform covers a lot of bases, including incident and vulnerability response. Key capabilities include AIdriven ”smart“ workflows for faster response times and integrations with tools from Palo Alto Networks, CrowdStrike, Microsoft and Zscaler.